mojarra: code injection
| Package(s): | mojarra | CVE #(s): | CVE-2011-4358 | ||||
| Created: | December 7, 2011 | Updated: | December 7, 2011 | ||||
| Description: | Mojarra (a JavaServer Faces implementation) can be made to execute untrusted values as EL expressions in some configurations. | ||||||
| Alerts: |
| ||||||